Home Snowflake Attack Update: Victim List Continues to Grow
News

Snowflake Attack Update: Victim List Continues to Grow

Krishi Chowdhary Journalist Author expertise
Disclosure
Disclosure
In our content, we occasionally include affiliate links. Should you click on these links, we may earn a commission, though this incurs no additional cost to you. Your use of this website signifies your acceptance of our terms and conditions as well as our privacy policy.

The Tech Report Why Trust Tech Report Arrow down

Tech Report is one of the oldest hardware, news, and tech review sites on the internet. We write helpful technology guides, unbiased product reviews, and report on the latest tech and crypto news. We maintain editorial independence and consider content quality and factual accuracy to be non-negotiable.

  • Weeks after data-cloud company Snowflake was attacked, the firm continues to struggle and its victim list continues to grow.
  • Snowflake’s personal investigation has revealed that it was not a vulnerability on its part that caused the breach. It started with the group compromising third parties that Snowflake did business with.
  • Customers who hadn’t enabled multifactor authentication were affected the most.

Snowflake Attack Update: Victim List Continues to Grow

Snowflake – a US-based cloud storage provider – continues to struggle with consequences weeks after it was attacked by the cybercrime gang ShinyHunters. In fact, things took a turn for the worse.

It already has a long list of victims, and as per reports, the list keeps growing as more Snowflake customers are discovering breaches in their system.

For example, this week, Australian ticketing provider Ticketek reached out to its customers about a potential data leak. Information such as names, email addresses, and birthdates are believed to have been compromised.

But whether this breach is linked to the Snowflake attack is yet to be confirmed. What we do know for sure is companies like Ticketmaster (a US-based ticketing firm) and Advance Auto Parts (a US-based car part retailer) are confirmed victims of the attack.

The latter even confirmed the attack in a security filing to the US Securities and Exchange Commission last week.

About the Attack

The attack first came to light around mid-June, when the return of a notorious cyber gang called UNC3944 was reported. It was initially believed that this gang was involved in the attack on Snowflake.

But it turns out, another gang called ShinyHunters is the mastermind behind the breach. And interestingly, a hacker who claims to be a part of the gang, recently came forward to reveal how they did it.

Apparently, they didn’t directly exploit Snowflake’s systems. Instead, they compromised US-based EPAM Systems (a software firm and a Snowflake elite partner) to deploy the attack.

ShinyHunters had posted an ad on the dark web, selling the data of 560 million Ticketmaster customers, including their phone numbers, addresses, and partial credit card numbers.

This claim is backed by the fact that Snowflake has been saying for weeks that its own systems have not been compromised. But again, EPAM Systems is also denying being compromised. So in short, we still can’t say for sure how exactly the breach took place.

What Does This Attack Tell Us about the Future of Cybersecurity?

A lot about the attack and its impact are still unknown. But one thing that we know for sure is passwords alone aren’t enough to keep you safe these days.

A lot of us are guilty of reusing old passwords or even using the same password across multiple sites and hackers are well-aware of this habit. So they exploit it for their own gain. So what’s the solution here? Probably going passwordless.

Snowflake itself is urging its customers to turn on 2-factor authentication so that it will take two or more types of authentication to access one’s account.

These authentications include biometric lock, OTPs sent by SMS, login links sent by email, third-party authenticator apps, and so on.

It is always a good idea to use one of the best password managers that can generate random passwords for your account and remember them for you. This way, you won’t end up setting simple or the same passwords for multiple online accounts.

The Tech Report - Editorial ProcessOur Editorial Process

The Tech Report editorial policy is centered on providing helpful, accurate content that offers real value to our readers. We only work with experienced writers who have specific knowledge in the topics they cover, including latest developments in technology, online privacy, cryptocurrencies, software, and more. Our editorial policy ensures that each topic is researched and curated by our in-house editors. We maintain rigorous journalistic standards, and every article is 100% written by real authors.

Question & Answers (0)

Have a question? Our panel of experts will answer your queries. Post your Question

Leave a Reply

Write a Review

Your email address will not be published. Required fields are marked *

Krishi Chowdhary Journalist

Krishi Chowdhary Journalist

Krishi is an eager Tech Journalist and content writer for both B2B and B2C, with a focus on making the process of purchasing software easier for businesses and enhancing their online presence and SEO.

Krishi has a special skill set in writing about technology news, creating educational content on customer relationship management (CRM) software, and recommending project management tools that can help small businesses increase their revenue.

Alongside his writing and blogging work, Krishi's other hobbies include studying the financial markets and cricket.

Latest News

T-Mobile Increases Unlocking Period to 365 Days: Fcc Unhappy
News

T-Mobile Increases Its Unlocking Period to 365 Days: Fcc Unhappy

The Hong Kong Stock Exchange to List Asia’s First Inverse Bitcoin ETF
Crypto News

Hong Kong Stock Exchange to List Asia’s First Inverse Bitcoin ETF

China Southern Asset Management Company Ltd (CSOP) is preparing to launch Asia’s first inverse Bitcoin ETF in Hong Kong. According to an announcement, the new Bitcoin futures inverse product will...

Metaplanet Makes Another Bitcoin Investment Move with $1.2 Million
Crypto News

Metaplanet Makes Another Bitcoin Investment Move with $1.2 Million

Metaplanet, a Japanese investment and consulting company, added more Bitcoin to its holdings. Recently, the firm spent 200 million yen ($1.2 million) to purchase an extra 20.38 BTC tokens as...

DeFi Records Inflow with TVL Surging to $94.1 Billion; What Does it Mean?
Crypto News

DeFi Records Inflow with TVL Surging to $94.1 Billion; What Does it Mean?

Mt. Gox Shapes Up for Huge Repayment Ahead of Imminent Ethereum ETF Launch
Crypto News

Mt. Gox Shapes Up for Huge Repayment Ahead of Imminent Ethereum ETF Launch

Solana Soars By 34%: Analysts Eye $1,000 Target on Bullish Chart Signal
Crypto News

Solana Soars By 34%: Analysts Eye $1,000 Target on Bullish Chart Signal

Grayscale To Offers a Full Fee Waiver for its Mini Ethereum ETF Trust to Limit Inflows
Crypto News

Grayscale To Offer a Full Fee Waiver for its Mini Ethereum ETF Trust to Limit Inflows